CVE-2022-30028 Information

Description

Dradis Professional Edition before 4.3.0 allows attackers to change an account password via reusing a password reset token.

Reference

https://dradisframework.com/ce/security_reports.html